AWS services or capabilities described in AWS Documentation may vary by region/location. Click Getting Started with Amazon AWS to see specific differences applicable to the China (Beijing) Region.

IAmazonWAFRegional.CreateRule (string, string, string)

Method

Search:

Creates a Rule, which contains the IPSet objects, ByteMatchSet
objects, and other predicates that identify the requests that you want to block. If
you add more than one predicate to a Rule, a request must match all of
the specifications to be allowed or blocked. For example, suppose you add the following
to a Rule:

An IPSet that matches the IP address 192.0.2.44/32

A ByteMatchSet that matches BadBot in the User-Agent
header

You then add the Rule to a WebACL and specify that you want
to blocks requests that satisfy the Rule. For a request to be blocked,
it must come from the IP address 192.0.2.44 and the User-Agent
header in the request must contain the value BadBot.

A friendly name or description for the metrics for this Rule. The name can contain only alphanumeric characters (A-Z, a-z, 0-9); the name can't contain whitespace. You can't change the name of the metric after you create the Rule.

The operation failed because AWS WAF didn't recognize a parameter in the request.
For example:
You specified an invalid parameter name.
You specified an invalid value.
You tried to update an object (ByteMatchSet, IPSet, Rule,
or WebACL) using an action other than INSERT or DELETE.
You tried to create a WebACL with a DefaultActionType
other than ALLOW, BLOCK, or COUNT.
You tried to create a RateBasedRule with a RateKey value
other than IP.
You tried to update a WebACL with a WafActionType
other than ALLOW, BLOCK, or COUNT.
You tried to update a ByteMatchSet with a FieldToMatchType
other than HEADER, METHOD, QUERY_STRING, URI, or BODY.
You tried to update a ByteMatchSet with a Field of HEADER
but no value for Data.
Your request references an ARN that is malformed, or corresponds to a resource with
which a web ACL cannot be associated.